CVE-2015-3625
Last modified
CVE-2015-3625 is a vulnerability of currently unknown severity. The NVIDIA GPU driver for FreeBSD R352 before 352.09, 346 before 346.72, R349 before 349.16, R343 before 343.36, R340 before 340.76, R337 before 337.25, R334 before 334.21, R331 before 331.113, and R304 before 304.125 allows local users with certain permissions to read or write arbitrary kernel memory via unspecified vectors that trigger an untrusted pointer dereference.. EPSS estimates a 0.39% chance of exploitation in the next 30 days.
Description
The NVIDIA GPU driver for FreeBSD R352 before 352.09, 346 before 346.72, R349 before 349.16, R343 before 343.36, R340 before 340.76, R337 before 337.25, R334 before 334.21, R331 before 331.113, and R304 before 304.125 allows local users with certain permissions to read or write arbitrary kernel memory via unspecified vectors that trigger an untrusted pointer dereference.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Nvidia | Gpu Driver | >= 304, < 304.125 |
| Nvidia | Gpu Driver | >= 331, < 331.113 |
| Nvidia | Gpu Driver | >= 334, < 334.21 |
| Nvidia | Gpu Driver | >= 337, < 337.25 |
| Nvidia | Gpu Driver | >= 340, < 340.76 |
| Nvidia | Gpu Driver | >= 343, < 343.36 |
| Nvidia | Gpu Driver | >= 346, < 346.72 |
| Nvidia | Gpu Driver | >= 349, < 349.16 |
| Nvidia | Gpu Driver | >= 352, < 352.09 |
References
- http://nvidia.custhelp.com/app/answers/detail/a_id/3693Patch, Vendor Advisory
- http://www.securitytracker.com/id/1032981Third Party Advisory, VDB Entry
- http://nvidia.custhelp.com/app/answers/detail/a_id/3693Patch, Vendor Advisory
- http://www.securitytracker.com/id/1032981Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2015-3625?
How severe is CVE-2015-3625?
How do I fix CVE-2015-3625?
Are you affected by CVE-2015-3625?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST